Bruno, On 06/01/2022 11:18, [email protected] wrote:
Peter,From: Peter Psenak <[email protected]> Sent: Thursday, January 6, 2022 11:03 AM Bruno, On 06/01/2022 10:40, [email protected] wrote:Peter, Thanks for your answer. Please see inline [Bruno]From: Peter Psenak <[email protected]> Sent: Thursday, January 6, 2022 10:25 AM Bruno, the PIC is used unchanged with PULSE.[Bruno] OK. Therefore, from a FIB standpoint, does this mean that the scalingproperties are also unchanged compared to loopback leaking (no aggregation on ABR)? that is correct.OK. Clear. Thanks. IMHO that point has been missing in some of the threads. (not from you)In which case, compared to leaking loopbacks, the key/only benefit of ABRsummarization + PULSE is the reduction of the number of (IS-IS) LSP being flooded (before failure, and after failure if multiple PE fails at the same time)? it's the reduction of number of prefixes that would need to be advertised by IGP and installed in foowarding of all routers.In sync with the benefits on the IGP signaling part. For the forwarding part: - I agree for pure MPLS LSR/P routers not installing BGP routes - But for PE/ingress nodes and IP transit routers installing BGP routes, since nothing change in the FIB, I would assume that this provides no reduction on the number of prefix installed in the FIB (well, at least when BGP PIC edge is used).
we are talking purely IGP prefixes here. Summarization itself results in reduction of number of IGP prefixes in FIB.
thanks, Peter
Thanks, --Brunothanks, PeterIf so this seem to partially contradict the below statement from Gyan as we onlyget partial advantage of the summarization.*From:*Lsr <[email protected]> *On Behalf Of *Gyan Mishra *Sent:* Thursday, January 6, 2022 12:27 AM[...]With the PUA/Pulse feature allows the domain wide flooding of the loopback host routes is now possible as can now we take advantage and of summarization.The only difference is that the PIC is triggered by the pulse arrival, instead of the IGP route removal. We have made a prototype of it and it works fine.[Bruno] OK thanks. I believe you, I was just trying to more precisely understandthe benefits and limits.--Brunothanks, Peter On 06/01/2022 09:09, [email protected] wrote:Hi Gyan, You are referring to both summarization and BGP PIC (edge). BGP PIC is quite old story, but if my memory serve me well, BGP PIC edge relies on the presence of the specific (/32) prefix information in the FIB. Hence it’s not clear to me how you can have both prefix summarization and BGP PIC edge benefits in the FIB on the BGP ingressnode.Taking the example from [1], below is a typical FIB chain for BGP Pic edge: IP Leaf:Pathlist:IP Leaf:Pathlist: --------+-------+--------+----------+ VPN-IP1-->|BGP-NH1|-->IGP-IP1(BGP NH1)--->|IGP-NH1,I1|--->Adjacency1 ||BGP-NH2|-->....||IGP-NH2,I2|--->Adjacency2 |+-------+|+----------+ || || vv OutLabel-List:OutLabel-List: +----------------------++----------------------+ |VPN-L11 (VPN-IP1, NH1)||IGP-L11 (IGP-IP1, NH1)| |VPN-L21 (VPN-IP1, NH2)||IGP-L12 (IGP-IP1, NH2)| +----------------------++----------------------+ Figure 2 Shared Hierarchical Forwarding Chain at iPE [1] https://datatracker.ietf.org/doc/html/draft-ietf-rtgwg-bgp-pic-17#section-2.2 <https://datatracker.ietf.org/doc/html/draft-ietf-rtgwg-bgp-pic-17#section-2.2> To help me get the picture, could you please highlight/draw the change(s) that you have in mind assuming IGP prefix summarization and PULSE? (More specifically regarding the IGP leaf “IGP-IP1(BGP NH1)") Thanks, Regards, -Bruno Orange Restricted *From:*Lsr <[email protected]> *On Behalf Of *Gyan Mishra *Sent:* Thursday, January 6, 2022 12:27 AM *To:* Robert Raszuk <[email protected]> *Cc:* Greg Mirsky <[email protected]>; Les Ginsberg (ginsberg) <[email protected]>; Christian Hopps <[email protected]>; AijunWang<[email protected]>; Shraddha Hegde <[email protected]>;TonyLi <[email protected]>; Hannes Gredler <[email protected]>; lsr <[email protected]>; Peter Psenak <[email protected]> *Subject:* Re: [Lsr] BGP vs PUA/PULSE Hi Robert The goal of the draft is providing egress protection when summarization is used similar to RFC 8679 Egress protection framework, but without the complexities. An IGP RIB within a domain is made up on connected interfaces and loopbacks. Of the two types, the critical prefix to be tracked is the /32 or /128 host routes on egress PE which is the BGP next-hop attribute via next-hop-self rewrite. So both connected and loopbacks can be placed in the same range for large aggregation domains, however due to the criticality of the next hop attribute the loopbacks are placed in a separate range, and so not summarized and flooded domain wide. The BGP next hop attribute is an MPLS exact match FEC binding for the LSP. Flooding of loopbacks workaround is typically done for MPLS domain due to issue with RFC 5283 inter area extension feature not being viable solution for LPM summary matching, thus all the prefixes still have to be flooded in LDP, so no net reduction in host route flooding. With the PUA/Pulse feature allows the domain wide flooding of the loopback host routes is now possible as can now we take advantage and of summarization. Even independent of MPLS in an IPv4, IPv6 or SRv6 environment the tracking of BGP next-hop-attribute component prefixes is critically important to improved convergence and not rely on BGP dead timers to expire. Even with BFD, LFA/RLFA/TILFA local protection , PIC and other optimizations we still need an optimization to track the summary route component prefixes to speed up convergence providing egress PEprotection.Kind Regards Gyan On Tue, Jan 4, 2022 at 6:55 PM Robert Raszuk <[email protected] <mailto:[email protected]>> wrote: Hi Aijun, In most deployments summary routes are already crafted carefully to only cover those destinations which are important and should be reachable from outside of the area. So I see no point in building yet another policy to select a subset of summaries to be PUA eligible. Along those lines I do not buy into the notion of "some prefixes within summaries to be more important than others" - it is simply impossible to say that this PE is more important than the other one in all practical cases. If we are to roll out a mechanism to signal unreachability it better be robust and dependable - not just an optional hint. With that I would welcome solution which says - if we have more then X prefixes (or % of prefixes) to be advertised by ABR we stop advertising the summary covering them (or deaggregate the summary). Thx, R. On Wed, Jan 5, 2022 at 12:06 AM Aijun Wang <[email protected] <mailto:[email protected]>> wrote: I think the mentioned solution can also address Robert and Christian’s concerns. Aijun Wang China Telecom On Jan 5, 2022, at 07:02, Aijun Wang <[email protected] <mailto:[email protected]>> wrote: Hi, Greg: https://datatracker.ietf.org/doc/html/draft-wang-lsr-prefix-unreachable-annoucement-08#section-8<https://datatracker.ietf.org/doc/html/draft-wang-lsr-prefix-unreachable-annoucement-08#section-8> hassome description for such considerations: “ In order to reduce the unnecessary advertisements of PUAM messages on ABRs, the ABRs should support the configuration of the protected prefixes.Based on such information, the ABR will only advertise the PUAM message when the protected prefixes(for example, the loopback addresses of PEs that run BGP) that within the summary address is missing.” Aijun Wang China Telecom On Jan 5, 2022, at 03:56, Greg Mirsky <[email protected] <mailto:[email protected]>> wrote: Hi Peter, thank you for your response. I'm looking forward to the new version of the draft. It will be interesting to learn the criteria that enable an ABR to reliably identify the scenarios you've suggested are outside the scope of the PULSE draft and should be handled differently. Regards, Greg On Tue, Jan 4, 2022 at 10:08 AM Peter Psenak <[email protected] <mailto:[email protected]>> wrote: Hi Greg, On 04/01/2022 18:13, Greg Mirsky wrote: > Hi Peter, > I'm probably missing something in the current PULSE but I cannot find > the mechanism that limits the number of the pulses. Do you envision that > being like a throttling mechanism? But delaying the propagation of > notification for some events might cause more instability in a network. no. It's a limit not a delay. If too many edge nodes loose connectivity to the ABR in its area, it's a result of the severe event like area partition or loss of area connectivity from ABR. These are not types of events that we are trying to address with pulses. The limit is not described in the published version of the draft. We are working on the updated version that will include the description of it. thanks, Peter > > Regards, > Greg > > On Tue, Jan 4, 2022 at 1:52 AM Peter Psenak <[email protected] <mailto:[email protected]> > <mailto:[email protected] <mailto:[email protected]>>> wrote: > > Hi Greg, > > On 03/01/2022 23:17, Greg Mirsky wrote: > > Happy New Year to All! > > > > Hi Peter, > > Top-pasting: > > In 99,99% of cases there will be only single pulse generated when > one PE > > goes down. That itself is a very rare event itself. > > > > We can easily limit the number of pulses generated on ABR to a single > > digit number to cover the unlikely case of many PEs in area becoming > > unreachable at the same time. > > > > I think that it is possible for the summarizing ABR to get > disconnected > > from the IGP area in such a way that the summarization is still > valid. > > If such a case is valid, would the ABR generate PULSE for each > > disconnected PE? > > obviously not. That's why I mentioned the number of pulses will be > limited on every ABR. > > thanks, > Peter > > > > > Regards, > > Greg > > > > On Mon, Jan 3, 2022 at 8:56 AM Peter Psenak > > <[email protected] <mailto:[email protected]> > <mailto:[email protected] <mailto:[email protected]>> > <mailto:[email protected] <mailto:[email protected]> > <mailto:[email protected] <mailto:[email protected]>>>> > > wrote: > > > > Chris, > > > > On 03/01/2022 17:18, Christian Hopps wrote: > > > > > > Peter Psenak <[email protected] <mailto:[email protected]> <mailto:[email protected] <mailto:[email protected]>> > <mailto:[email protected] <mailto:[email protected]> <mailto:[email protected] <mailto:[email protected]>>>> writes: > > > > > >> On 03/01/2022 16:21, Christian Hopps wrote: > > >>> > > >>>> On Nov 29, 2021, at 7:39 PM, Les Ginsberg (ginsberg) > > <[email protected] <mailto:[email protected]> > <mailto:[email protected] <mailto:[email protected]>> > > <mailto:[email protected] <mailto:[email protected]> > <mailto:[email protected] <mailto:[email protected]>>>> wrote: > > >>>> > > >>>> Tony – > > >>>> Let me try one example – see if it helps. > > >>>> Summarization is used in the network. > > >>>> But customer identifies a modest number of key nodes > where it > > wants to detect loss of reachability ASAP. Unfortunately, > customer > > is unable to assign addresses which are outside of the summary to > > these nodes. > > >>> > > >>> I think this does in fact capture the problem trying to be > > solved here, nicely. > > >> > > >> not really. > > >> In fact assigning addresses to the nodes in a way that > they are > > part of the > > >> summary is the right thing to do. > > > > > > No, not if you want more detailed information about specific > > reachability it's not. And .... > > > > > > typically you want to summarize all prefixes inside the area when > > advertising outside the area. And you want to know about some > of these > > prefixes when they are lost to help convergence. > > > > > > > > > >> The problem we are trying to solve is to use the > summarization > > but without the > > >> loss of the fast notification of the node down event. > > > > > > You want more specific information about reachability, but you > > just want to do it when the network is stressed and > undergoing change. > > > > > > So the "works now" way of not summarizing these important > > prefixes has the state in the network when it's working, so > you know > > adding and removing it is something the network is already > capable > > of handling. > > > > > > New signaling that *only* is created when things start > failing, > > tests the infrastructure at exactly the wrong time. > > > > In 99,99% of cases there will be only single pulse generated when > > one PE > > goes down. That itself is a very rare event itself. > > > > We can easily limit the number of pulses generated on ABR to > a single > > digit number to cover the unlikely case of many PEs in area > becoming > > unreachable at the same time. > > > > > > > > > > If a failing network can handle the extra state, then a > > functioning stable network of course can too. > > > > no, that's not what we claim. We want network to be > summarized all > > times > > and generate limited number of pulses at any given time to > help the > > network converge fast in case where single (or very few) PEs > in an area > > go down. > > > > thanks, > > Peter > > > > > > > > > > > > Thanks, > > > Chris. > > > > > >> > > >> thanks, > > >> Peter > > >> > > >> > > >>> One solution very simple solution that works today is: > > >>> - Tell the customer they can't do this, but they *can* > modify > > their addressing > > >>> (this is literally what they do for a living) so that they > > don't have this > > >>> problem. > > >>> Do we *really* want modify our IGPs (a BIG ask) with some > > pretty questionable > > >>> changes, just to save the operators the trouble of doing > their > > job correctly? > > >>> Maybe the answer here is this isn't a good idea, and we > should > > move on... > > >>> Thanks, > > >>> Chris. > > >>> [as wg member] > > >>> _______________________________________________ > > >>> Lsr mailing list > > >>> [email protected] <mailto:[email protected]> <mailto:[email protected] <mailto:[email protected]>> <mailto:[email protected] <mailto:[email protected]> > <mailto:[email protected] <mailto:[email protected]>>> > > >>> https://www.ietf.org/mailman/listinfo/lsr <https://www.ietf.org/mailman/listinfo/lsr> > <https://www.ietf.org/mailman/listinfo/lsr <https://www.ietf.org/mailman/listinfo/lsr>> > > <https://www.ietf.org/mailman/listinfo/lsr <https://www.ietf.org/mailman/listinfo/lsr> > <https://www.ietf.org/mailman/listinfo/lsr <https://www.ietf.org/mailman/listinfo/lsr>>> > > >>> > > > > > > > > > > _______________________________________________ > > Lsr mailing list > > [email protected] <mailto:[email protected]> <mailto:[email protected] <mailto:[email protected]>> <mailto:[email protected] <mailto:[email protected]> > <mailto:[email protected] <mailto:[email protected]>>> > > https://www.ietf.org/mailman/listinfo/lsr <https://www.ietf.org/mailman/listinfo/lsr> > <https://www.ietf.org/mailman/listinfo/lsr <https://www.ietf.org/mailman/listinfo/lsr>> > > <https://www.ietf.org/mailman/listinfo/lsr <https://www.ietf.org/mailman/listinfo/lsr> > <https://www.ietf.org/mailman/listinfo/lsr <https://www.ietf.org/mailman/listinfo/lsr>>> > > > _______________________________________________ Lsr mailing list [email protected] <mailto:[email protected]> https://www.ietf.org/mailman/listinfo/lsr <https://www.ietf.org/mailman/listinfo/lsr> _______________________________________________ Lsr mailing list [email protected] <mailto:[email protected]> https://www.ietf.org/mailman/listinfo/lsr <https://www.ietf.org/mailman/listinfo/lsr> -- <http://www.verizon.com/> *Gyan Mishra* /Network Solutions Architect / /Email [email protected] <mailto:[email protected]>/ /M 301 502-1347/_________________________________________________________________________________________________________________________Ce message et ses pieces jointes peuvent contenir des informationsconfidentielles ou privilegiees et ne doivent doncpas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu cemessage par erreur, veuillez le signalera l'expediteur et le detruire ainsi que les pieces jointes. Les messageselectroniques etant susceptibles d'alteration,Orange decline toute responsabilite si ce message a ete altere, deforme oufalsifie. Merci.This message and its attachments may contain confidential or privilegedinformation that may be protected by law;they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and deletethismessage and its attachments.As emails may be altered, Orange is not liable for messages that have beenmodified, changed or falsified.Thank you.Orange Restricted______________________________________________________________________ ___________________________________________________Ce message et ses pieces jointes peuvent contenir des informationsconfidentielles ou privilegiees et ne doivent doncpas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu cemessage par erreur, veuillez le signalera l'expediteur et le detruire ainsi que les pieces jointes. Les messageselectroniques etant susceptibles d'alteration,Orange decline toute responsabilite si ce message a ete altere, deforme oufalsifie. Merci.This message and its attachments may contain confidential or privilegedinformation that may be protected by law;they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and delete thismessage and its attachments.As emails may be altered, Orange is not liable for messages that have beenmodified, changed or falsified.Thank you.Orange Restricted _________________________________________________________________________________________________________________________ Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci. This message and its attachments may contain confidential or privileged information that may be protected by law; they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and delete this message and its attachments. As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified. Thank you.
_______________________________________________ Lsr mailing list [email protected] https://www.ietf.org/mailman/listinfo/lsr
